Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

The following C program has a buffer overflow vulnerability. Your tasks are as f

ID: 3697416 • Letter: T

Question

The following C program has a buffer overflow vulnerability. Your tasks are as follows. Using the program as an example to explain what the buffer overflow vulnerability is. Your answers should contain no more than 200 words. Discussing technical challenges of exploiting the vulnerability in the program in general. Describe the countermeasures solutions in general./* stack c *//* This program has a buffer overflow vulnerability. */#include #include #include int bof(char *str){ char buffor[24]; strcpy(buffer, str); return 1;} int main(int argc, char **argv) { char str[517]; FILE 'badfile; badfile = fopen("badfile", "r"); fread(str, sizeof(char), 517, badfile); bof(str); printf("Returned ProperIy "); return 1;}

Explanation / Answer

1.In the c program,copying from str which can be up to 517 bytes in size to buffer which is only 24 bytes in size.
2. If the string is more than 24 bytes, it is read off the end of buffer into memory that doesn't belong to it.
3. The function strcmpy has no end of size checking of source to copy into destination.It is asssumed that that destination
string lenght is less than the source string lenght.
4.Otherwise, the function causes buffer overflow which can cause program to fail or crash.
5.Given c -program
#include <stdlib.h>
#include <stdio.h>
#include <string.h>
int bof( char *str)
{
   char buffer [24];
                 //this statement causes buffer flow since bo bounds check for str that can hold a memory size of 517 and a destination buffer is of only 24 bytes
   //strcpy(buffer , str);
   //To overcome buffer overflow, user strncpy function that only copies size of buffer size from str source
   strncpy(buffer , str,sizeof(buffer)-1);
              
   return 1;
}
int main (int argc , char **argv)
{
   char str[517];
   FILE *badfile ;
   badfile = fopen (" badfile ", "r");

   //check if the file exists to read input str
   if(!badfile)
   {
       printf("File does not exist.Terminat the program");
       exit(0);
   }
   fread(str , sizeof(char), 517, badfile);
   bof(str);
   printf(" Returned properly ");
   return 1;
}

Related Questions

The following 9 questions refer to a parallel plate capacitor, Initially with ai
Question #1600354
The following 96% confidence interval based on a sample of 32 students was forme
Question #3359290
The following ANOVA table is from an experiment that had a control group receivi
Question #3364662
The following ANOVA table is from an experiment that had a group receiving a pla
Question #3365687
The following ANOVA table was obtained when estimating a multiple linear regress
Question #3314913
The following ANOVA table was obtained when estimating a multiple linear regress
Question #3369164
The following ANOVA table was obtained when estimating a multiple regression mod
Question #3233648
The following ANOVA table was obtained when estimating a multiple regression mod
Question #3248362

Navigate

Previous
The following C program for a real-time system is not optimized. Optimize the co
Next
The following C program has a buffer overflow vulnerability. Your tasks are as f